Open starpause opened 2 years ago
@starpause this is definitely something that needs consideration. Here's the current new spec: https://github.com/near-daos/sputnik-dao-contract/wiki/%5BDRAFT%5D-DAO-Data-Model-Architectures#dao-proposal-data
I had originally added permissions & voting requirements at the proposal level - but here's the questions that need answering before officially supporting proposal level permission configs:
I welcome more thoughts and opinions on this!
I agree with @TrevorJTClarke on this one.
Proposal level permission can be a nice addition to the current governance model, but they open the door for horrendous attacks. One can simply create a Transfer proposal to transfer all the money from the treasury to a dedicated account. With proposal level permission, it can be very easy to achieve that. Even if the council has 1000 members that can vote, the proposal creator can set up the proposal permissions to only 3 members which are his allies. It's enough for 2 members to approve the proposal and the money from the treasury would be lost in the blink of an eye.
@starpause, why exactly do people need this? Do you know any specific use cases?
There are not proposal level permissions in the sputnik contracts. It's possible to give different groups in one DAO access to different actions (AddProposal vs Vote), but to have 2 different groups allowed to vote on 2 different proposals you need to set up 2 DAOs (could be sub daos or partner daos). We have gotten several requests for proposal level permissions from users.